WO 2004/006499 



PCT/US2003/021244 



1/4 



102 



Fig.1 



/ 



A set of baseline authentication agencies 



^E^^ ^^^^^ ... 



A global network domain 



110 



A cookie 



DNS records 



A collection of partner sites 



Partner site 1 



Partner site 1 



-104 



-106 



Partner site 1 



-108 



Best Available Copy 



1 0/5i9774 



WO 2004/006499 



PCT/US2003/021244 



Browser requests partner site 
abcl23.com home page 



2/4 
200 



abcl23.com server returns home 
page, incl. reference to 
abcl23.com's seamless NET 
login Javascript file 



201 



Fig. 2a 



Browser requests abc 123 .corn's 
seamless NET login Javascript file 
from abcl23.com.partner.net.org 



202 



NET login cookie, if present 
No 



203 



204 




215 



No 


abcl23.com server returns 




> ► 


Javascript code that sets the 






Javascript variable 






"partnerTickef * to 0 





abcl23.com server returns redirect 
to BAA's partner login ticket- 
generating URL 



205 



abc 123 .corn's NET id 




Best Available Copy 



WO 2004/006499 



"0/5197?, 



PCT/US2003/021244 



3/4 



(a) _^-208 



BAA generates abcl23.com login 
ticket, and returns Javascript code 

that stores the ticket in the 
Javascript variable "partnerTicket" 



partnerTicket 



Browser detects returned ticket, 
assigns to hidden form field and 
auto-submits form to abc.com 
seamless login handler 



partnerTicket 



abcl23.com server passes ticket to 
BAA's partner ticket-validating 
URL 



partnerTicket 



212 



(b) 



209 



210 



211 




No 



(c) 



216 



BAA server returns Javascript 
code that sets the Javascript 
variable "partnerTicket" to 0. 





BAA server returns user's NET 
GUID 








NET GUID 

f 




abcl23.com server maps user's NET GUID 
to their abcl23.com login id, then logs them 
in as that abcl23.com user 



213 



214 



217 



Browser detects that no ticket was 
returned, hence leaves 
abcl23.com's home page, incl. 
login button, displayed to user 



Fig. 2b 



Best Available Copy 



WO 2004/006499 



1 0/51 9 7 



PCTAJS2003/021244 



4/4 



Fig. 3 



BAA 



Browser 



Browser fetches BAA's token- 



generation URL (305) 
BAA returns token (306) 



Partner site 
Auction123.com 



Browser requests home page (301) 



Partner site returns page 



with URL (302) 

Browser fetches JavaScript file from 



The URL and sends cookies (303) 



To BAA (304) 



Browser automatically POSTS login 



p» 

Partner site requests mapping of toker 


form (307) 
i to global network account number (308) 


< 

BAA returns the user's global netw 


fork account number (309) 



Login successful; Partner site sends 



Personalized Welcome page (310) 



Best Available Copy 



